Arxan Key & Data Protection

Encrypt keys and sensitive data with FIPS-certified technology

Protecting information you send to users with in-transit encryption is a way to protect it from network eavesdropping, but attackers look not only at what is sent across the network but also at the app itself and what they receive in their own copy of the app. This is a new threat vector that must be mitigated, since traditional cryptography is not designed to defend keys and data from being observed at the endpoint.

White-Box Cryptography is designed to address the concern that an attacker may look not only at data while it is in transit, but may also look at the endpoint where the data is decrypted and keys reside. Using mathematical techniques and transformations, White-Box Cryptography blends together the code and keys for cryptographic operations such that the key cannot be found nor extracted from the app.

Arxan Key & Data Protection is a fully featured White-Box Cryptography suite that can be used for adding protection to your new and existing crypto systems

Easy to integrate - directly interoperate with other crypto packages, such as OpenSSL, and devices in your architecture without requiring server side changes

Differential Fault Analysis, or DFA, is an attack technique that is designed to recover cryptographic keys from apps by injecting “faults” into the app’s crypto code at runtime and observing changes in the app’s behavior. Learn how to protect apps against DFA attacks with Arxan.